It is tempting to think that information governance, privacy, information security and records management are someone else’s problems. Except that they are not. Every person who handles information makes a series of decisions (some big and some small) that can put themselves, that information and the University at risk.

Since the iGaPP (Information Governance and Privacy Protection) Programme started in 2018, we have had multiple instances of the mishandling of confidential or personal information caused by human error on the part of our staff and/or non-compliance with University policies. These incidents potentially expose the University to lawsuits, fines by the Information Regulator and reputational damage. Incidents also causes significant disruption, because the University is required to investigate and in some instances, to report to the Information Regulator.

This is why we have created the iGaPP Manual. The purpose of the Manual is to support the Information Governance Policies and to offer practical advice to help you manage information responsibly, and to let you know who you must contact if you need assistance.

The iGaPP Manual is available on the Governance and Compliance policies page alongside the Information Governance policies which include the following:

Information Governance policy
Privacy policy
Records Management policy
Information Security Management policy

Compliance with this Manual and the Information Governance policies is compulsory for all staff. 

Should you have any questions or want to request further training please contact the Information Governance Office at [email protected]